Attorney Docket No. 41434-8001 .US00 
Amendments to the Claims 

1. (Original) A system for synchronizing a plurality of network policies 
amongst a plurality of network nodes, the plurality of network policies operative of the 
plurality of nodes to regulate data traffic through the plurality of nodes, the system 
comprising: 

an ordered plurality of classifications of the plurality of network policies, the 
ordered plurality of classifications including: 

a first one or more classifications identifying policies enabling collusion 
between the plurality of network nodes to support a common database of network 
policies; 

a second one or more classifications identifying policies for compressing 
or expanding information passed amongst the plurality of nodes; 

a third one or more classifications including policies for route distribution 
and selection in the plurality of nodes; 

a plurality of local policy databases, each of the plurality of local policy databases 
residing on a respective node in the plurality of nodes, each of the local policy 
databases further including a plurality of policy instances operative on the respective 
node; and 

a plurality of synchronization processes resident on the plurality of nodes, the 
plurality of synchronization processes operative to minimize a convergence time 
between the plurality of local databases and the common database of network policies, 
wherein the plurality of synchronization processes are further operative to map network 
policies received at the respective node to the ordered plurality of classifications. 

2. (Original) The system of claim 1, wherein the plurality of nodes are 
distributed across one or more wide area networks. 

3. (Original) The system of claim 1 , wherein the plurality of nodes are at least 
partially packet-switched. 
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4. (Original) The system of claim 1 , wherein the plurality of nodes are at least 
partially cell-switched. 

5. (Original) The system of claim 1 , wherein the plurality of nodes at least 
partially overlap one or more autonomous systems. 

6. (Original) The system of claim 1 , wherein the plurality of nodes at least 
partially overlap two or more autonomous systems. 

7. (Original) The system of claim 1 , wherein the plurality of nodes 
communicate at least partially via an Interior Gateway Protocol. 

8. (Original) The system of claim 1, wherein the plurality of nodes 
communicate at least partially via an Exterior Gateway Protocol. 

9. (Original) The system of claim 1, wherein the plurality of nodes 
communicate at least partially via Border Gateway Protocol (BGP). 

10. (Original) The system of claim 1, wherein the first one or more 
classifications further identifies policies for validating network information exchanged 
amongst the plurality of nodes. 

11. (Original) The system of claim 1, wherein the first one or more 
classifications further identifies policies for validating information exchanged amongst 
the plurality of nodes for security. 

12. (Original) The system of claim 11, wherein the first one or more 
classifications further identifies policies for validating information exchanged amongst 
the plurality of nodes for conformance to syntax. 
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13. (Original) The system of claim 11, wherein the first one or more 
classifications further identifies policies for validating information exchanged amongst 
the plurality of nodes for appropriate syntax. 

14. (Original) The system of claim 11, wherein the first one or more 
classifications further identifies policies for ensuring that information received at the 
respective node has arrived intact from a trusted source. 

15. (Original) The system of claim 1, wherein the first one or more 
classifications further identifies policies for validating security of information exchanged 
amongst the plurality of nodes. 

16. (Original) The system of claim 1 , further comprising: 

a plurality of consistency enforcement processes resident on the plurality of 
nodes, the plurality of consistent enforcement processes ensuring internal consistency 
of the plurality of local databases. 

17. (Original) The system of claim 1, wherein each of the plurality of nodes 
includes one or more routers. 

18. (Withdrawn) In an inter-network including a plurality of interconnected 
communications nodes, a method of colluding between the plurality of nodes, the 
method comprising: 

at a first node in the plurality of nodes, receiving a network policy instance from a 
second node in the plurality of nodes, the network policy instance regulating processing 
of data traversing the inter-network; 

determining consistency of the network policy instance with a local policy 
database resident in the first node, the local policy database regulating network 
processing in the first node, determining consistency of the network policy instance 
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further including identifying the network policy instance in a hierarchy of network 
policies to determine a rank for the network policy instance; and 

if and only if the network policy is consistent with the local policy database, 
adding the network policy to the local policy database. 



nodes are distributed across one or more autonomous systems. 

20. (Withdrawn) The method of claim 18, wherein the plurality of network 
nodes are distributed across two or more autonomous systems. 

21. (Withdrawn) The method of claim 18, wherein the plurality of network 
nodes are at least partially packet-switched. 

22. (Withdrawn) The method of claim 18 wherein the plurality of network 
nodes are at least partially cell-based. 

23. (Withdrawn) The method of claim 18, wherein the inter-network includes 
one or more Exterior Gateway Protocols. 

24. (Withdrawn) The method of claim 18, wherein the inter-network includes 
one or more interioifgateway protocols. 



25. (Withdrawn) The method of claim 18, wherein the inter-network employs 
Border Gateway Protocol. 

26. (Withdrawn) The method of claim 18, wherein the network policy instance 
specifies which of the plurality of nodes are reachable from the first node. 



19. (Withdrawn) The method of claim 18, wherein the plurality of network 
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27. (Withdrawn) The method of claim 18, wherein the network policy instance 
specifies certificate authorities for authenticating information passed between the 
plurality of nodes. 

28. (Withdrawn) The method of claim 18, wherein the network policy instance 
specifies syntax rules for packets received by the first node. 

29. (Withdrawn) The method of claim 18, wherein the network policy instance 
specifies attestation policies for the first node. 

30. (Withdrawn) The method of claim 29, wherein the attestation policies are 
based on IPSec. 

31. (Withdrawn) The method of claim 29, wherein the attestation policies are 
based on MD-5. 

32. (Withdrawn) The method of claim 29, wherein the attestation policies are 
based on Public Key Infrastructure. 

33. (Withdrawn) The method of claim 18, wherein the network policy instance 
specifies policies for compressing information forwarded in the plurality of nodes. 

34. (Withdrawn) The method of claim 18, wherein the network policy instance 
specifies policies for expanding information traversing the plurality of nodes. 

35. (Withdrawn) The method of claim 18, wherein the network policy instance 
specifies route selection policies. 

36. (Withdrawn) The method of claim 18, wherein the network policy instance 
specifies route distribution. 



Application no. 10/648,141 
41434-8001/13425454.1 



-6- 



Examiner Chau T. Nguyen 
Art Unit 2663 



Attorney Docket No. 41434-8001 .US00 

37. (Withdrawn) The method of claim 36, wherein the route distribution 
policies may be time-based. 

38. (Withdrawn) The method of claim 37, wherein the route distribution 
policies may be event-based. 

39. (Withdrawn) The method of claim 18, wherein the network policy instance 
includes peer policies, the peer policies determining at least one of a network 
information base supported by the peer and one or more protocol functions supported 
by the peer. 
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